summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorStig Thormodsrud <stig@io.vyatta.com>2008-11-14 12:48:29 -0800
committerStig Thormodsrud <stig@io.vyatta.com>2008-11-14 12:48:29 -0800
commit730ece6544cd2c350cac3740ef2a7db10cd37987 (patch)
treea88a98718386e73ee82cab18c7d11620f275dda0
parentdb8ec5fec7d231a5dec537d0bc82ddb3f7c3dbc0 (diff)
downloadvyatta-cfg-system-730ece6544cd2c350cac3740ef2a7db10cd37987.tar.gz
vyatta-cfg-system-730ece6544cd2c350cac3740ef2a7db10cd37987.zip
Fix 3920: Operator level users require sudo permission for nat
translation monitor commands
-rw-r--r--debian/vyatta-cfg-system.postinst.in3
1 files changed, 2 insertions, 1 deletions
diff --git a/debian/vyatta-cfg-system.postinst.in b/debian/vyatta-cfg-system.postinst.in
index 5bd37e29..8cc0682a 100644
--- a/debian/vyatta-cfg-system.postinst.in
+++ b/debian/vyatta-cfg-system.postinst.in
@@ -68,7 +68,8 @@ Cmnd_Alias DATE = /bin/date, /usr/sbin/ntpdate
Cmnd_Alias PPPOE_CMDS = /sbin/pppd, /sbin/poff, /usr/sbin/pppstats
Cmnd_Alias PCAPTURE = /usr/bin/tshark, /usr/bin/tcpdump
%operator ALL=NOPASSWD: DATE, IPTABLES, ETHTOOL, IPFLUSH, \
- PPPOE_CMDS, PCAPTURE, /usr/sbin/wanpipemon, /usr/bin/lsof
+ PPPOE_CMDS, PCAPTURE, /usr/sbin/wanpipemon, \
+ /usr/bin/lsof, /usr/sbin/conntrack
EOF
cat <<EOF >>/etc/sudoers
%users ALL=NOPASSWD: ${bindir}/sudo-users/